0dc86eae7fd8e07528a5f4b4cfd70867553a26e6fd0e8fba2b8fe942ae2f8725 | Triage

Sharing

General

Target

093becfbe0a55a91bcd49ce5755faeb1de3890fb87ea3fcaa71605c69e735a6e
Size

443KB
Sample

231011-kgll1abe51
MD5

b350e3a6c1b8fe2bef68470eb49a1ae7
SHA1

33f551bb5e2764acc42571569b82ac29b69e9b18
SHA256

0dc86eae7fd8e07528a5f4b4cfd70867553a26e6fd0e8fba2b8fe942ae2f8725
SHA512

df5cebec354356e31a2cb517e6fa8c3f3ecc0514b7a9f71661f0751cc5e5e02679d4d182ea62c3617eb676591e15c96d9dcd3eed6cfc1dbe83aa534d05cdabd7
SSDEEP

12288:Di63mSf8ZWNt5eZZlhGc1q4zlzqUirR/KMTTV:TB8it5eTjz1q4zZqUkJTTV

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  093becfbe0a55a91bcd49ce5755faeb1de3890fb87ea3fcaa71605c69e735a6e
- Size
  
  604KB
- MD5
  
  c56294024e939911af027c78d38aea18
- SHA1
  
  d55485ef36120ca94779e3d1cdca260ac2d4aead
- SHA256
  
  093becfbe0a55a91bcd49ce5755faeb1de3890fb87ea3fcaa71605c69e735a6e
- SHA512
  
  18e726573e51eaa5bee4daed6305e34b0e9c78c253fc0b2097d844d70f15ea4ebf4f8fe387cb90cc57f068b19d4f15be822774397fac51c9e969d41918bcec5f
- SSDEEP
  
  12288:tSMOf3mef6ZWTt5e3ZphGcvq4xlxqAiVY:S3y2t5eJnzvq4xDqAgY
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence